CVE-2019-14671

Posted on by admin

CVE-2019-14671

Firefly III 4.7.17.3 is vulnerable to local file enumeration. An attacker can enumerate local files due to the lack of protocol scheme sanitization, such as for file:/// URLs. This is related to fints_url to import/job/configuration, and import/create/fints.

Source: CVE-2019-14671

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다